Presentation is loading. Please wait.

Presentation is loading. Please wait.

Webgoat. Blame it on the Goat! Run through and solve all exercises This part is broken up into 2-3 1 hour blocks

Similar presentations


Presentation on theme: "Webgoat. Blame it on the Goat! Run through and solve all exercises This part is broken up into 2-3 1 hour blocks"— Presentation transcript:

1 Webgoat

2 Blame it on the Goat! Run through and solve all exercises This part is broken up into hour blocks

3

4 Webgoat General HTTP Basics Thread Safety

5 Webgoat Code Quality HTML Clues

6 Webgoat Unvalidated Parameters Hidden Field Tampering Unchecked JavaScript Validation

7 Webgoat Broken Access Control Remote Admin Access Path Based Access Control Role Based Access Control

8 Webgoat Broken Authentication and Session Management Forgot Password (N/A) Predictable Session Identifier Weak Authentication Cookie Basic Authentication

9 Webgoat Cross-Site Scripting (XSS) Stored XSS Reflected XSS

10 Webgoat Buffer Overflows Buffer Overflow (N/A)

11 Webgoat Injection Flaws Parameter Injection (N/A) Command Injection Numeric SQL Injection Blind SQL Injection String SQL Injection

12 Webgoat Improper Error Handling Fail Open Authentication

13 Webgoat Insecure Storage Encoding Basics

14 Webgoat Denial of Service DOS Multiple Login

15 Webgoat Insecure Configuration Management Forced Browsing (N/A)

16 Webgoat Web Services Soap Request WSDL Scanning Web Service SQL Injection

17 Webgoat Challenge Start Challenge!

18 ?


Download ppt "Webgoat. Blame it on the Goat! Run through and solve all exercises This part is broken up into 2-3 1 hour blocks"

Similar presentations


Ads by Google